Microsoft Defender XDR, Copilot for Security & Microsoft Sentinel now in one portal
Ғылым және технология
Manage SIEM, XDR, and threat intelligence from one place with new updates in the Microsoft Defender portal. Interact with all of your security data using generative AI with Microsoft Copilot for Security. View incidents across your digital estate-whether they're related to endpoints, SaaS services, your network in the cloud or on prem. This unified approach eliminates the inefficiency of SOC teams having to switch between multiple systems and manually piece together incident details, while maintaining all the current functionalities of each connected service.
Rob Lefferts joins Jeremy Chapman to discuss how the Defender experience has evolved into a unified security operations platform that combines threat detection, prevention, investigation, and response.
► QUICK LINKS:
00:00 - How Microsoft Defender has evolved
01:47 - Increase your SOC’s efficiency and speed
02:30 - GPT-based Copilot for Security
03:54 - See an active incident
05:45 - Attack disruption
06:48 - High-level recap with Security Copilot
07:39 - Unified advanced hunting
08:51 - Set it up
09:32 - Wrap up
► Link References
For more information, and to join our private preview go to aka.ms/SOCPlatform
► Unfamiliar with Microsoft Mechanics?
As Microsoft's official video series for IT, you can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft.
• Subscribe to our KZread: / microsoftmechanicsseries
• Talk with other IT Pros, join us on the Microsoft Tech Community: techcommunity.microsoft.com/t...
• Watch or listen from anywhere, subscribe to our podcast: microsoftmechanics.libsyn.com...
► Keep getting this insider knowledge, join us on social:
• Follow us on Twitter: / msftmechanics
• Share knowledge on LinkedIn: / microsoft-mechanics
• Enjoy us on Instagram: / msftmechanics
• Loosen up with us on TikTok: / msftmechanics
#SIEM #XDR #MicrosoftDefender #MicrosoftSentinel
Пікірлер: 26
This is good because having a single pane of glass makes my work so much more efficient. Im in a hybrid environment using a 3rd party tool to do that for my soc team.
This is amazing but when can we have it and how much will it cost?
Huge !! This is awesome
AWESOME COLLABORATIVE CYBER TOOLS
Is there, or will there be lighthouse intergration for this portal ? Will this portal also allow intergration with MS workspace manager and co-management/N-tier options ?
I noticed that you mentioned you disabled the user, but did you also revoke all 365 sessions?
This is awesome
It’s really confusing to follow all this rapid naming changes! 😮
@tiagovfs
6 ай бұрын
I have created a mind map to try to help with the naming changes, check it out: cybergeeks.cloud/wp-content/uploads/2022/08/MicrosoftDefender_MindMap-1.pdf
as an entry level cybersecurity analyst is there traning or courses I can take to get experience working with this new XDR portal?
I love it❤️
Will I be able to grant access to Sentinel to my clients who are in different device groups using the RBAC that's already available on Microsoft Defender. As of now I am the only one using Sentinel as I cannot scope the information for each client.
I curious about the training that will be coming out with these programs. Microsoft Certification paths changing and reworked.
Dam we just moved away frpm sentinel due to cost. This is amazing
How can we get access to the private preview? Would love to provide feedback and have a glimpse of what’s coming up next!
Sorry I mightve missed it.. but when will this actually be available in my Defender portal? it looks great, but when is it GA so we can start using it?
@MSFTMechanics
6 ай бұрын
We haven't announced a GA date yet for this. You can subscribe to Microsoft Security Copilot and AI updates to be amongst the first to know when it does: go.microsoft.com/fwlink/?linkid=2248632
Wow!
Wow! :O
what about multi tenant Intune?
I still see them as separate portal at my Azure portal. When unified portal will be available?
@MSFTMechanics
6 ай бұрын
Yes, the separate experiences will also continue running.
Hello, What if, I am just starting? is there a path to follow of videos or material to read ? Thank you
@MSFTMechanics
29 күн бұрын
Everything is here: learn.microsoft.com/defender/
where is the dark mode ?
@tomlitor4979
6 ай бұрын
That is what I was waiting to see announced at this event.